Dieses Jobangebot ist archiviert und steht nicht mehr zur Verfügung.
Vakante Jobangebote finden Sie unter Projekte.

Senior Risk Analyst

Eingestellt von CompuCom

Gesuchte Skills: Network, Unix, Support, Client

Projektbeschreibung

SENIOR RISK ANALYST FOSTER CITY, CA 12 MONTH CONTRACT

At COMPUCOM, we set you up for job success right from the start. Our precision recruiting process aligns the right fit for the right people.

MUST HAVE SKILLS: Experience performing information/security risk assessments; Minimum of 5-10 years information security experience; Understanding of security requirements documents for such assets as Routers, Switches, Firewalls, Windows and UNIX systems, database systems, and security architectures.

NICE TO HAVE: Familiarity with Archer GRC; CISA and/or CISSP certifications are HIGHLY preferred.

SUMMARY: Risk Management partners with IT groups, business groups, and project teams to perform security risk assessments for applications, infrastructure, and vendor/third parties. This Security Analyst will focus on implementing risk assessment methodologies, including COSO and ISO frameworks. The position will also support the review of technical security requirements, and will support the review, approval and tracking of security exceptions and remediation.

MAJOR ACTIVITIES:

- Perform and document risk assessments based on involvement and consulting with project teams throughout the client org.
- Perform interviews, analyze design documents, review output from automated scanning tools, threat and vulnerability information to evaluate project and process designs, applications, network infrastructure and information systems, and determine security compliance and overall security risk based on corporate policies, security requirements documents, industry common practice, and legislative and legal requirements.
- Lead efforts in developing and writing new security requirements documents for network devices, Windows systems, Unix systems, Databases, and other technologies.
- Provide technical training and consulting on current security topics and issues.
- Communicate the concepts of information security to guide information security practices and solutions within the corporate environment.
- Advocate enhancements to existing processes and procedures to improve information security controls.

QUALIFICATIONS:

- CISA and/or CISSP certifications strongly preferred
- 5-10 years industry experience in information security required
- Current knowledge of the regulatory and legislative landscape and acquire an in-depth understanding of security policies and practices
- Must acquire an in-depth knowledge of client network and systems, and be able to understand security requirements documents for such assets as Routers, Switches, Firewalls, Windows and UNIX systems, database systems, and security architectures
- Must possess a familiarity with common information security, risk management and controls frameworks such as COSO, COBIT, ISO 17799, 27000 series, etc.
- Familiarity with Archer GRC desired
- Previous experience with virtualization, cloud, and/or mobile application security a plus
- Must have experience with threat modelling, threat management methodologies and process analysis
- Must be able to translate information risks to business impacts
- Good project management skills
- Demonstrated ability to meet deadlines and commitments in an environment that requires multitasking among concurrent projects
- Ability to convey security concepts related to network, application, and systems - to both technical and non-technical audiences
- Must have superior ability to work well with others in a supportive team environment, prioritize multiple high impact activities, and outstanding written and verbal communication skills
- Sound planning, organizational and problem solving skills
- Bachelor s/Degree or equivalent experience

*CompuCom supports Employment Equity and Diversity*

Dallas-based CompuCom Systems, Inc. is a leading provider of end-user enablement, service experience management, and cloud technology services to Fortune 1000 companies. CompuCom partners with enterprises to develop smarter ways they can work, grow and produce value for their business. Founded in 1987, privately held CompuCom has approximately 11,500 associates and supports more than 4 million end users in North America. For more information, visit our website

Projektdetails

  • Einsatzort:

    California, Vereinigte Staaten

  • Projektbeginn:

    asap

  • Projektdauer:

    Keine Angabe

  • Vertragsart:

    Contract

  • Berufserfahrung:

    Keine Angabe

Geforderte Qualifikationen

CompuCom